Job Description

:

Job description:

• Provide support and consultation in operations of Information Security sub-components not limited to firewall and internet proxy.
• Review firewall change request and ensure it\'s compliant with firewall/network security standards and organizational security standards. Perform Firewall Recertification.
• Perform firewall post-change review/reconciliation using security policy management and compliance tools like Tufin, AlgoSec, Redseal, Skybox, etc., and ensure it\'s compliant with firewall/network security standards and organizational security standards.
• Review internet proxy (Eg.: Blue Coat, McAfee, etc.,) access to internet resources requests for active threat/risk and ensure it\'s compliant with firewall/network security standards and organizational security standards.
• Review security sub-components and ensure it\'s compliant with industrial network security standards and organizational security standards.
• Perform URL filtering and Content filtering reviews and ensure access to/from vulnerable, malicious and objectionable internet websites and resources are blocked. Engage security service providers like Symantec, Blue Coat, McAfee, ZScaler etc., to review URL and its contents/risk reputation and categorize accordingly.
• Network Security Hardening Audit - Audit network firewall/proxy configuration and security polices, identify potential security risks, engage security/firewall engineering/admin/operations team for corrective actions and drive it to closure.
• Perform security audit using Information Security/Cyber Security Analytics tools and produce reports, identify potential security risks, assign priority, engage security/firewall engineering/admin/operations team for corrective actions and drive it to closure.
• Assist in ensuring that security concerns are addressed and mitigated.
• Generate automated security audit and compliance reports.

Qualification:
Bachelor\'s or Master\'s degree in computer science or a related discipline, or equivalent work experience required. 4-7 years of experience in Information Security or related technology experience required. Experience in banking, financial services sector is a plus.

• Experience in firewall, web/internet proxy, web/internet gateway, and network security - configuration, administration, auditing and recertification.
• Experience or good understanding of network hardening, information security risk assessment, security configuration auditing and compliance.
• Experience or good understanding of security policy orchestration tools such as Tufin, AlgoSec, Skybox, Firemon, etc.
• Very good communication skills.
• CISSP, Security+, or any firewall/proxy/security related certification is a plus.

BNY Mellon is an Equal Employment Opportunity/Affirmative Action Employer. Minorities/Females/Individuals With Disabilities/Protected Veterans.

Our ambition is to build the best global team \xe2\x80\x93 one that is representative and inclusive of the diverse talent, clients and communities we work with and serve \xe2\x80\x93 and to empower our team to do their best work. We support wellbeing and a balanced life, and offer a range of family-friendly, inclusive employment policies and employee forums.

BNY Mellon